EUVD-2023-0409

Malicious code in bioql PyPI...

SQL Injection

liftkit/database is vulnerable to SQL Injection attacks. A specifically crafted attack statement through the processOrderBy function in Query.php allows a malicious user to inject and execute arbitrary SQL queries on the target system...

SQL Injection in liftkit/database

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The name of the patch is...

GHSA-8HCF-2M4V-F2RQ SQL Injection in liftkit/database

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The name of the patch is...

CVE-2016-15020 liftkit database Query.php processOrderBy sql injection

A vulnerability was found in liftkit database up to 2.13.1. It has been classified as critical. This affects the function processOrderBy of the file src/Query/Query.php. The manipulation leads to sql injection. Upgrading to version 2.13.2 is able to address this issue. The patch is named...

CVE-2016-15020

CVE-2016-15020 affects the LiftKit database library up to version 2.13.1. The vulnerability is in the function processOrderBy within src/Query/Query.php, where input manipulation leads to an SQL injection. The issue has a fixed release in version 2.13.2 , with the patch identified as 42ec8f2b22e0...

PT-2023-10339 · Unknown · Liftkit Database

Name of the Vulnerable Software and Affected Versions: liftkit database versions up to 2.13.1 Description: A critical issue has been found, affecting the function processOrderBy of the file src/Query/Query.php. This leads to sql injection. Recommendations: For liftkit database versions up to...